Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6000

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2008-6000
Last Modified 07 Mar 2011 10:15:33
Published 28 Jan 2009 10:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2008-6000

Summary

The GDTdiIcpt.sys driver in G DATA AntiVirus 2008, InternetSecurity 2008, and TotalCare 2008 populates kernel registers with IOCTL 0x8317001c input values, which allows local users to cause a denial of service (system crash) or gain privileges via a crafted IOCTL request, as demonstrated by execution of the KeSetEvent function with modified register contents.

Vulnerable Systems

Application

  • Gdata Antivirus 2008

  • Gdata Internetsecurity 2008

  • Gdata Totalcare 2008


References

XF - gdata-gdtdiicpt-privilege-escalation(45249)

VUPEN - ADV-2008-2636

BID - 31246

MISC - http://trapkit.de/advisories/TKADV2008-008.txt

SECUNIA - 31941


Last Updated: 27 May 2016 10:49:01